Websites or domains that don't need permission to use direct Security Key attestation
Supported on: Microsoft Edge version 77, Windows 7 or later
Registry
HKLM
Software\Policies\Microsoft\Edge HKCU
Software\Policies\Microsoft\Edge Options
List (registry values) list
- list under
Software\Policies\Microsoft\Edge\SecurityKeyPermitAttestation Description
Specifies the WebAuthn RP IDs that don't need explicit user permission when attestation certificates from security keys are requested. Additionally, a signal is sent to the security key indicating that it can use enterprise attestation. Without this policy, users are prompted each time a site requests attestation of security keys. Example value: contoso.com